CERTA-2006-AVI-148

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité dans l'explorateur de Microsoft Windows permet à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Description

L'explorateur de Microsoft Windows ne manipule pas correctement les objets de type COM (pour Component Object Model). L'architecture COM propre à Microsoft permet la manipulation d'objets par les applications installées sur le système. Dans le cas de l'explorateur, un utilisateur malveillant peut inciter l'utilisateur à se connecter à un serveur de fichiers (au moyen d'un lien sur un site web par exemple), et profiter de cette vulnérabilité pour exécuter du code arbitraire à distance.

Solution

Appliquer le correctif tel qu'indiqué dans le bulletin de sécurité Microsoft MS06-015 (cf. section Documentation).

None
Impacted products
Vendor Product Description
Microsoft Windows Microsoft Windows Server 2003 ;
Microsoft Windows Microsoft Windows XP Service Pack 2 ;
Microsoft Windows Microsoft Windows 2000 ;
Microsoft Windows Microsoft Windows XP Service Pack 1 ;
Microsoft Windows Microsoft Windows Server 2003 Service Pack 1.
References

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Windows Server 2003 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows 2000 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 Service Pack 1.",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nL\u0027explorateur de Microsoft Windows ne manipule pas correctement les\nobjets de type COM (pour Component Object Model). L\u0027architecture COM\npropre \u00e0 Microsoft permet la manipulation d\u0027objets par les applications\ninstall\u00e9es sur le syst\u00e8me. Dans le cas de l\u0027explorateur, un utilisateur\nmalveillant peut inciter l\u0027utilisateur \u00e0 se connecter \u00e0 un serveur de\nfichiers (au moyen d\u0027un lien sur un site web par exemple), et profiter\nde cette vuln\u00e9rabilit\u00e9 pour ex\u00e9cuter du code arbitraire \u00e0 distance.\n\n## Solution\n\nAppliquer le correctif tel qu\u0027indiqu\u00e9 dans le bulletin de s\u00e9curit\u00e9\nMicrosoft MS06-015 (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-0012",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-0012"
    }
  ],
  "links": [],
  "reference": "CERTA-2006-AVI-148",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2006-04-12T00:00:00.000000"
    },
    {
      "description": "modification du risque.",
      "revision_date": "2006-05-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans l\u0027explorateur de Microsoft Windows permet \u00e0 un\nutilisateur malveillant d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans l\u0027explorateur de Microsoft Windows",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS06-015 du 11 avril 2006",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS06-015.mspx"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.